CVE-2022-30781
CVE-2022-30781 copied to clipboard

Published 20 hours ago •

wuhan005

→

Metadata

🍵 Gitea repository migration remote command execution exploit.

Readme
Issues

🍵 CVE-2022-30781

Gitea repository migration remote command execution exploit.

How to use

Run an HTTP filesystem server with the files in this repository.
Edit the command to be exeucted in api/v1/repos/e99/exp/pulls/1/index.html L96.
Migrate remote repository with URL http://<your_host>/e99/exp on the Gitea instance.
Pwnned!

Reference

https://tttang.com/archive/1607/ (Chinese)

Credit

@wuhan005 @Li4n0 from Vidar-Team

This repository is only for security researches/teaching purposes, use at your own risk!

About

🍵 Gitea repository migration remote command execution exploit.

exploit

gitea

cve

cve-2022-30781

86

Stars

16

Forks

Watchers

Owner

wuhan005

← Metadata

86

Stars

16

Forks

Watchers

Owner

wuhan005

Metadata

🍵 Gitea repository migration remote command execution exploit.

Back

CVE-2022-30781 CVE-2022-30781 copied to clipboard

Metadata

🍵 CVE-2022-30781

How to use

Reference

Credit

← Metadata

Owner

Metadata

CVE-2022-30781
CVE-2022-30781 copied to clipboard